OpenSearch (basically ElasticSearch) - Designed to provide fast search capabilities and supports full-text search, indexing, and similarity scoring
Amazon DocumentDB (with MongoDB compatibility), a managed NoSQL document database service designed for storing semi-structured data to facilitate search capabilities
Amazon DynamoDB, a fully managed NoSQL key-value database service that offers low-latency data retrieval to handle fast index lookups as well as search operations
Amazon Aurora, a managed relational database service that is optimized for high-performance transactional workloads that can be useful for search operations
| Service | Purpose (One-liner Summary) | Pitch |
|---|---|---|
| AWS Config | Tracks resource configurations and changes over time to support audit and compliance. | read-only view of config, very manual |
| AWS Audit Manager | Automates evidence collection for audits to help you continuously assess compliance. | automated compliance assessment, e.g. GDPR, ISO of your apps |
| AWS Artifact | Gives access to AWS compliance reports, certifications, and legal agreements. | infra reports, certs and legal agreements, but it’s AWS’s own certs and reports, it’s nothing about your apps |
| AWS Trusted Advisor | Provides real-time best practice checks to improve security, performance, and cost optimization. | automated security/performance/cost advice, mostly config based |
| Amazon Inspector | Automatically scans workloads for software vulnerabilities and unintended network exposure. | scans aws traffic for vulnerabilities, EC2, ECS and lambda |
AWS Config - AWS Config is a service for assessing, auditing, and evaluating the configurations of your AWS resources. It helps with continuous monitoring and compliance but does not provide the broad optimization and guidance offered by AWS Trusted Advisor. AWS Config is a tool for monitoring and recording AWS resource configurations and evaluating them against desired configurations. While it is useful for maintaining configuration compliance, it does not deal with external compliance reports or provide notification capabilities for ISV compliance documents, making it irrelevant to the company's needs.
AWS Audit Manager - AWS Audit Manager helps you continuously audit your AWS usage to assess risk and compliance with regulations and industry standards. It focuses on compliance reporting rather than providing optimization and guidance. Audit Manager is focused on helping users automate evidence collection for auditing purposes and assess their AWS environment against specific compliance frameworks.
AWS Trusted Advisor is a service that provides guidance to help you provision your resources following AWS best practices. It helps optimize your AWS environment in areas such as cost savings, performance, security, and fault tolerance, making it an essential tool for governance in AI systems. AWS Trusted Advisor is a service that provides guidance to optimize AWS resources by analyzing security, cost, performance, and fault tolerance. However, it does not provide features for managing or receiving notifications about compliance reports, including ISV compliance reports.
AWS Artifact is specifically designed to provide access to a wide range of AWS compliance reports, including those from Independent Software Vendors (ISVs). AWS Artifact allows users to configure settings to receive notifications when new compliance documents or reports are available. This capability makes it an ideal choice for a company that needs timely email alerts regarding the availability of ISV compliance reports. The new third-party reports tab on the AWS Artifact Reports page provides on-demand access to security compliance reports of Independent Software Vendors (ISVs) who sell their products through AWS Marketplace. You can subscribe to notifications and create configurations to get notified when a new report or agreement, or a new version of an existing report or agreement becomes available on AWS Artifact.
Amazon Inspector is a vulnerability management service that continuously scans workloads for software vulnerabilities and unintended network exposure. Amazon Inspector assesses the security and compliance of your AWS resources by performing automated security checks based on best practices and common vulnerabilities. Amazon Inspector can assess EC2 instances and Amazon ECR repositories to provide detailed findings and recommendations for remediation. You can use Amazon Inspector to maintain a secure and compliant AWS environment.
Regions and AZs